Director, Security Operations

About the Role

The Security Operations team is at the frontline of Lastpass's security, responsible for detecting threats, leading investigations, and driving incident response across the full technology estate. The team's work is critical in maintaining the security and integrity of Lastpass's services, ensuring that customers can trust the company with their sensitive information.

Lastpass is looking for a seasoned professional who is passionate about complex problem-solving and motivated by the challenge of scale. The ideal candidate will have a deep understanding of security operations, threat intelligence, and incident response, as well as excellent leadership and communication skills.

What You Will Do

• Own and drive the strategy, roadmap, and maturation of Lastpass's Security Operations function, translating the threat landscape into a multi-year program plan that scales with the business.
• Lead all response operations across the full incident lifecycle, from detection and triage through containment, eradication, recovery, and post-incident review.
• Build, develop, and retain a high-performing team of analysts and engineers, setting clear performance expectations, career development pathways, and a culture of operational excellence.
• Partner with the CISO, Legal, and Communications to manage high-severity incidents, coordinating executive response and fulfilling regulatory notification obligations.
• Define and own detection and response program metrics, SLAs, and reporting frameworks, providing the CISO and board with clear, evidence-based visibility into program maturity and risk posture.
• Champion the integration of AI-assisted triage, automation pipelines, and Detection-as-Code methodologies to reduce analyst toil and drive down mean-time-to-respond.
• Establish and maintain strategic relationships with external partners, including threat intelligence providers, industry CERTs, and law enforcement agencies as needed.
• Manage and develop a team of experienced Response Analysts, ensuring they have the necessary tools, training, and support to excel in their roles.
• Collaborate with the Platform and Software Engineering, Cloud Security, and Cyber Defence teams to ensure alignment and effective security practices across the organization.
• Stay updated on the latest security threats, technologies, and trends, applying this knowledge to continuously improve Lastpass's security posture.

What We Are Looking For

• A minimum of 8 years of experience in security operations, with at least 3 years in a leadership or managerial role.
• Proven track record of building and managing high-performing security teams.
• Deep understanding of security operations, threat intelligence, and incident response.
• Excellent leadership, communication, and project management skills.
• Experience with AI-assisted security tools and technologies.
• Strong analytical and problem-solving skills, with the ability to think strategically and tactically.
• Experience working in a fast-paced, dynamic environment with a strong culture of collaboration and continuous improvement.
• Familiarity with regulatory requirements and security standards such as GDPR, HIPAA, and SOC 2.
• Bachelor's degree in Computer Science, Information Security, or a related field.

Nice to Have

• Experience with cloud security platforms and technologies.
• Knowledge of programming languages such as Python, Java, or C++.
• Familiarity with DevOps practices and tools such as Jenkins, Docker, and Kubernetes.
• Experience with security information and event management (SIEM) systems.
• Certification in security operations, such as CompTIA Security+ or CISSP.

Benefits and Perks

• Competitive salary and benefits package.
• Opportunity to work with a leading company in the secure access solutions space.
• Collaborative and dynamic work environment with a team of experienced professionals.
• Professional development opportunities, including training and education support.
• Flexible working hours and remote work options.
• Access to the latest security tools and technologies.
• Recognition and reward for outstanding performance and contributions.
• Comprehensive health insurance and wellness programs.
• Generous paid time off and holiday policy.

• To demonstrate proficiency in Excel, prepare examples of how you've used the tool to analyze security incident response data, such as creating dashboards to track metrics like mean time to detect (MTTD) and mean time to respond (MTTR).
• Research LastPass's security operations and be prepared to discuss how you would integrate their Secure Access Essentials into a comprehensive security strategy, highlighting your understanding of the company's products and services.
• Develop a portfolio or work samples that showcase your experience in security operations, such as incident response plans, security audits, or compliance reports, to demonstrate your expertise to the interviewer.
• Emphasize your ability to work independently and collaboratively in a remote setting, as LastPass is a remote-friendly company, and be prepared to provide examples of how you've managed remote teams or collaborated with distributed stakeholders in previous roles.
• Be prepared to discuss your experience with security frameworks and regulations relevant to the UK, such as GDPR and UK Data Protection Act, and how you would ensure compliance in a security operations role at LastPass.
• When negotiating salary, research the market rate for Director of Security Operations roles in the UK and be prepared to discuss your expectations based on your experience and qualifications, taking into account the company's remote work arrangement and any related benefits or trade-offs.